This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rx1ON7GU73BXuWP9KeYJ4Bzu5xo.roa File: rx1ON7GU73BXuWP9KeYJ4Bzu5xo.roa (raw, json) Hash identifier: oHaVmpof1rTeyxwrkt0kcwIT3Cc+QUIIU2birLq7q2U= Subject key identifier: AF:1D:4E:37:B1:94:EF:70:57:B9:63:FD:29:E6:09:E0:1C:EE:E7:1A Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E461782347955EB779CAD61E643D0 Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rx1ON7GU73BXuWP9KeYJ4Bzu5xo.roa Signing time: Thu 01 Jan 2026 12:17:57 +0000 ROA not before: Thu 01 Jan 2026 12:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 399114 IP address blocks: 193.22.157.0/24 maxlen: 32 193.22.158.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 21:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:46:17:82:34:79:55:eb:77:9c:ad:61:e6:43:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af1d4e37b194ef7057b963fd29e609e01ceee71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:62:5a:33:90:7a:6e:c4:5e:b4:a3:5c:51: 86:e2:5a:14:0d:f7:fa:0f:68:ac:89:61:94:24:c3: dd:09:cd:d1:a8:93:47:00:d6:ff:87:e2:68:3a:e3: 5d:74:54:2c:96:57:43:5e:66:d6:6b:9e:d4:f8:d7: fb:73:b7:3e:ff:d1:59:f9:15:67:66:47:71:89:f9: 14:1e:76:50:ea:f7:cd:22:37:12:ce:70:87:cb:00: 88:a9:0a:f6:3b:ac:e2:57:bf:4c:e8:c5:38:0a:6c: 8d:7b:87:45:d1:ac:cb:18:09:32:7f:0a:06:5c:ac: fb:1e:06:c4:8f:1d:a5:e5:1f:2f:d1:38:e7:b3:57: ad:07:40:ba:e6:97:66:51:44:cd:47:40:b3:fb:d0: 0e:98:18:40:85:60:44:1e:fd:4b:68:5a:40:30:72: 47:58:9a:40:20:ae:c7:a0:26:89:48:e7:99:8c:7b: b6:80:a8:fd:c1:e5:ac:ca:d3:b2:6f:47:a9:97:01: bb:61:16:32:b8:22:e8:a6:fb:4f:38:cc:ca:39:0f: ab:97:d1:65:24:5b:a4:65:c5:b3:e9:74:03:a5:0d: 6e:cc:5b:32:0c:14:19:cb:66:30:d6:50:c3:29:d8: 13:56:82:8c:53:2c:6f:ec:4a:63:fe:66:6e:15:2c: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1D:4E:37:B1:94:EF:70:57:B9:63:FD:29:E6:09:E0:1C:EE:E7:1A X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rx1ON7GU73BXuWP9KeYJ4Bzu5xo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.22.157.0-193.22.158.255 Signature Algorithm: sha256WithRSAEncryption ad:1b:20:dd:0d:ca:e1:55:bf:99:0a:9c:fa:7e:60:3c:bc:eb: 63:37:39:71:92:9d:63:8e:19:21:2e:14:b9:0e:a2:4c:3b:81: e5:36:73:07:1a:03:87:5b:d8:4e:c0:8c:46:75:35:ed:bb:73: 41:03:4b:a7:b1:df:42:b7:59:05:ec:bb:90:aa:c0:a2:ae:c1: dc:2a:57:10:05:d2:f5:bd:c7:5d:aa:88:8e:cc:f6:a3:26:5e: 86:44:bc:27:f1:65:6f:d5:ca:9d:4b:6c:57:d1:42:af:eb:e5: e8:71:c5:6a:06:9b:54:74:d4:78:c7:6c:07:12:a9:96:fb:28: 32:ed:c1:16:87:ac:7a:74:35:0e:36:85:b8:af:0b:c6:3b:2b: 8a:d0:c1:1b:05:07:8a:cb:2e:00:45:1c:cb:ba:27:5b:44:61: b5:71:50:ae:55:a1:38:4b:ea:60:3f:08:b4:b4:38:5c:fd:c0: 6b:12:f8:4b:fe:9f:de:be:a4:31:a7:4d:36:ba:ff:7f:76:b6: 7a:de:9b:15:73:10:75:03:4f:15:f3:ff:d6:11:92:76:5c:92: 02:9e:93:64:33:af:18:e1:df:0e:6b:ff:54:e3:b5:b5:41:86: 3e:4d:2e:82:b8:34:26:37:d5:38:3c:b2:da:28:78:7d:15:f0: a8:cf:cc:26 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt5fkYXgjR5Vet3nK1h5kPQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjFkNGUzN2IxOTRlZjcwNTdiOTYzZmQyOWU2MDllMDFjZWVlNzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6liWjOQem7EXrSjXFGG4loUDff6 D2isiWGUJMPdCc3RqJNHANb/h+JoOuNddFQslldDXmbWa57U+Nf7c7c+/9FZ+RVn ZkdxifkUHnZQ6vfNIjcSznCHywCIqQr2O6ziV79M6MU4CmyNe4dF0azLGAkyfwoG XKz7HgbEjx2l5R8v0Tjns1etB0C65pdmUUTNR0Cz+9AOmBhAhWBEHv1LaFpAMHJH WJpAIK7HoCaJSOeZjHu2gKj9weWsytOyb0eplwG7YRYyuCLopvtPOMzKOQ+rl9Fl JFukZcWz6XQDpQ1uzFsyDBQZy2Yw1lDDKdgTVoKMUyxv7Epj/mZuFSzk3wIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFK8dTjexlO9wV7lj/SnmCeAc7ucaMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvcngxT043R1U3M0JYdVdQOUtlWUo0Qnp1NXhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADBFp0D BADBFp4wDQYJKoZIhvcNAQELBQADggEBAK0bIN0NyuFVv5kKnPp+YDy862M3OXGS nWOOGSEuFLkOokw7geU2cwcaA4db2E7AjEZ1Ne27c0EDS6ex30K3WQXsu5CqwKKu wdwqVxAF0vW9x12qiI7M9qMmXoZEvCfxZW/Vyp1LbFfRQq/r5ehxxWoGm1R01HjH bAcSqZb7KDLtwRaHrHp0NQ42hbivC8Y7K4rQwRsFB4rLLgBFHMu6J1tEYbVxUK5V oThL6mA/CLS0OFz9wGsS+Ev+n96+pDGnTTa6/392tnremxVzEHUDTxXz/9YRknZc kgKek2Qzrxjh3w5r/1TjtbVBhj5NLoK4NCY31Tg8stooeH0V8KjPzCY= -----END CERTIFICATE-----Generated at Thu Jan 8 04:20:34 2026 by rpki-client